You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa poppler

Sigurnosni nedostaci programskog paketa poppler

==========================================================================
Ubuntu Security Notice USN-3865-1
January 22, 2019

poppler vulnerabilities
==========================================================================

A security issue affects these releases of Ubuntu and its derivatives:

– Ubuntu 18.10
– Ubuntu 18.04 LTS
– Ubuntu 16.04 LTS
– Ubuntu 14.04 LTS

Summary:

Several security issues were fixed in poppler.

Software Description:
– poppler: PDF rendering library

Details:

It was discovered that poppler incorrectly handled certain PDF files.
An attacker could possibly use this issue to cause a denial of service.
(CVE-2018-20481, CVE-2018-20650)

Update instructions:

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 18.10:
  libpoppler79                    0.68.0-0ubuntu1.4
  poppler-utils                   0.68.0-0ubuntu1.4

Ubuntu 18.04 LTS:
  libpoppler73                    0.62.0-2ubuntu2.6
  poppler-utils                   0.62.0-2ubuntu2.6

Ubuntu 16.04 LTS:
  libpoppler58                    0.41.0-0ubuntu1.11
  poppler-utils                   0.41.0-0ubuntu1.11

Ubuntu 14.04 LTS:
  libpoppler44                    0.24.5-2ubuntu4.15
  poppler-utils                   0.24.5-2ubuntu4.15

In general, a standard system update will make all the necessary
changes.

References:
  https://usn.ubuntu.com/usn/usn-3865-1
  CVE-2018-20481, CVE-2018-20650

Package Information:
  https://launchpad.net/ubuntu/+source/poppler/0.68.0-0ubuntu1.4
  https://launchpad.net/ubuntu/+source/poppler/0.62.0-2ubuntu2.6
  https://launchpad.net/ubuntu/+source/poppler/0.41.0-0ubuntu1.11
  https://launchpad.net/ubuntu/+source/poppler/0.24.5-2ubuntu4.15—–BEGIN PGP SIGNATURE—–
Version: GnuPG v2
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=v+2p
—–END PGP SIGNATURE—–

Top
More in Preporuke
Sigurnosni nedostaci programske biblioteke LibTIFF

Otkriveni su sigurnosni nedostaci programske biblioteke LibTIFF za operacijski sustav Ubuntu. Otkriveni nedostaci potencijalnim napadačima omogućuju izazivanje DoS stanja ili...

Close